Release Malcolm v2.5.0 · cisagov/Malcolm

Malcolm v2.5.0 contains the following changes:

v2.4.2...v2.5.0

Updated packaged Yara rules (from github.com/Neo23x0/signature-base, originally github.com/fireeye/sunburst_countermeasures) for Yara scanning of carved files to detect artifacts from the SolarWinds SUNBURST attack
Version bumps:
- Zeek 3.0.12
- Bison, CMake and LLVM/Clang tools for building Zeek for Docker image and Hedgehog OS ISO

Malcolm and Hedgehog Linux may be obtained by pulling or building the Docker images and/or building the ISO installer images as described in the documentation. Unofficial ISO installer images for Malcolm and Hedgehog Linux are not hosted on GitHub, but may be downloaded from https://malcolm.fyi/download/.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Malcolm v2.5.0